Privacy Policy

PryceScan ("we", "us", "our") operates the website at prycescan.com and the application at app.prycescan.com (together, the "Service"). This privacy policy explains how we collect, use, store, and protect your personal information.

We respect your privacy and are committed to protecting your personal data. This policy complies with the Australian Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the European Union General Data Protection Regulation (GDPR) where applicable.

1. Information We Collect

1.1 Account information. When you create an account, we collect your name, email address, and organisation name. If you subscribe to a paid plan, we collect billing information through our payment processor (Stripe). We do not store credit card numbers on our servers.

1.2 Usage data. We collect information about how you use the Service, including pages visited, features used, and actions taken. This helps us improve the product and provide support.

1.3 Device and connection data. We automatically collect your IP address, browser type, operating system, and device identifiers when you access the Service. This information is used for security monitoring and to optimise performance.

1.4 Business data you provide. You may upload or enter product catalogues, pricing rules, competitor lists, and other business information into the Service. This data belongs to you and is processed solely to provide the Service.

1.5 Competitive pricing data. The Service collects publicly available pricing information from retail websites, shopping platforms, and online marketplaces. This is publicly available commercial data and does not include personal information.

1.6 Cookies and tracking. We use essential cookies for authentication and session management. We use analytics cookies (with your consent where required) to understand how the Service is used. You can manage cookie preferences in your browser settings. We do not sell data to third parties or use advertising cookies.

2. How We Use Your Information

We use your information to:

2.1 Provide and operate the Service, including monitoring competitor prices, calculating pricing recommendations, and delivering notifications.

2.2 Process payments and manage your subscription.

2.3 Send transactional emails (account confirmations, password resets, billing notices, alert notifications).

2.4 Improve the Service based on usage patterns and feedback.

2.5 Protect the security of the Service and detect fraudulent activity.

2.6 Comply with legal obligations.

We do not use your business data (product catalogues, pricing rules, competitor configurations) for any purpose other than providing the Service to you. We do not share your business data with other customers. We do not use your data to train machine learning models outside of your account.

3. Data Sharing

We share your information only with:

3.1 Service providers who help us operate the Service (hosting, payment processing, email delivery, authentication). These providers are contractually bound to process data only as instructed by us and to maintain appropriate security measures.

3.2 Your organisation's team members, as configured by your administrator.

3.3 Law enforcement or regulatory bodies when required by law or to protect our legal rights.

We never sell your personal information. We never share your business data with other PryceScan customers or third parties.

4. Data Storage and Security

4.1 Your data is stored on managed infrastructure in secure data centres. All data is encrypted at rest (AES-256) and in transit (TLS 1.3).

4.2 Access to production systems is restricted to authorised personnel and protected by multi-factor authentication.

4.3 We conduct regular security reviews and maintain an incident response plan.

4.4 For more details, see our Security page.

5. Data Retention

5.1 Account data is retained for as long as your account is active. After cancellation, account data is retained for 30 days before permanent deletion.

5.2 Business data (products, prices, rules) retention depends on your plan: Basic (30 days), Pro (90 days), Advanced (365 days), Enterprise (unlimited or as agreed).

5.3 Competitive pricing data follows the same retention schedule as your plan.

5.4 Usage logs and analytics data are retained for 12 months.

5.5 You may request deletion of your data at any time by contacting [email protected].

6. Your Rights

Depending on your jurisdiction, you have the right to:

6.1 Access. Request a copy of the personal data we hold about you.

6.2 Correction. Request correction of inaccurate personal data.

6.3 Deletion. Request deletion of your personal data (subject to legal retention requirements).

6.4 Portability. Export your data in a machine-readable format. Available on all paid plans via Settings > Data Export.

6.5 Objection. Object to processing of your personal data for specific purposes.

6.6 Withdrawal of consent. Withdraw consent for optional data processing (such as analytics cookies) at any time.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. International Data Transfers

Our infrastructure providers may process data in jurisdictions outside your home country. Where data is transferred internationally, we ensure appropriate safeguards are in place, including standard contractual clauses and adequacy decisions where applicable.

8. Children

The Service is not directed at individuals under 18 years of age. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes via email or through the Service. The "last updated" date at the top reflects the most recent revision.

10. Contact

For privacy-related inquiries:

• Email: [email protected]

If you are not satisfied with our response to a privacy concern, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.